QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2020-25681

Back to search

CVE-2020-25681

Published: Jan 20, 2021

Modified: Nov 4, 2025

PUBLISHED

Description

A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network, who can forge DNS replies such as that they are accepted as valid, could use this flaw to cause a buffer overflow with arbitrary data in a heap memory segment, possibly executing code on the machine. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

VendorProductVersions

n/a

dnsmasq

affected
dnsmasq 2.83

Weaknesses (CWE)

CWE-122

References

FEDORA-2021-84440e87ba
vendor-advisory
x_refsource_FEDORA
GLSA-202101-17
vendor-advisory
x_refsource_GENTOO
DSA-4844
vendor-advisory
x_refsource_DEBIAN
FEDORA-2021-2e4c3d5a9d
vendor-advisory
x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now